Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/cFEeeShvQgzlGgU_8ZDihqcUifc.roa
File: cFEeeShvQgzlGgU_8ZDihqcUifc.roa (raw, json)
Hash identifier: RGTxJm6HRKyDzkkPqTgKtHeRtRJA7rYjwA2MSR2puq8=
Subject key identifier: 70:51:1E:79:28:6F:42:0C:E5:1A:05:3F:F1:90:E2:86:A7:14:89:F7
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0196F6431BB5038FCA4FD9CC60556C667F17
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/cFEeeShvQgzlGgU_8ZDihqcUifc.roa
Signing time: Thu 22 May 2025 04:31:55 +0000
ROA not before: Thu 22 May 2025 04:31:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58212
IP address blocks: 5.83.150.0/24 maxlen: 24
5.231.70.0/24 maxlen: 24
5.231.82.0/24 maxlen: 24
5.231.96.0/24 maxlen: 24
5.231.203.0/24 maxlen: 24
5.231.234.0/24 maxlen: 24
77.90.22.0/24 maxlen: 24
77.90.39.0/24 maxlen: 24
77.90.41.0/24 maxlen: 24
77.90.52.0/24 maxlen: 24
77.90.58.0/24 maxlen: 24
85.93.1.0/24 maxlen: 24
85.93.6.0/24 maxlen: 24
85.93.22.0/24 maxlen: 24
89.144.14.0/24 maxlen: 24
89.144.16.0/24 maxlen: 24
89.144.17.0/24 maxlen: 24
89.144.18.0/24 maxlen: 24
94.249.153.0/24 maxlen: 24
94.249.158.0/24 maxlen: 24
178.18.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 May 2025 09:18:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f6:43:1b:b5:03:8f:ca:4f:d9:cc:60:55:6c:66:7f:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: May 22 04:31:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=70511e79286f420ce51a053ff190e286a71489f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:23:ed:4a:5c:20:55:7e:9f:34:f1:68:5d:24:
37:db:b4:97:04:2e:41:9e:d5:f1:24:60:0b:39:8b:
6d:31:40:f7:bd:4f:3e:c0:72:b4:cc:a1:49:fe:57:
f6:20:cd:57:86:dc:3d:f2:6d:b3:e1:d5:c1:9c:60:
49:e6:8a:b8:04:95:e4:ba:eb:8e:4b:ab:36:6e:54:
91:05:f5:b7:3c:d6:f9:e9:b3:06:3e:af:36:a7:22:
8a:11:94:69:82:d6:83:69:8d:e3:ee:98:a6:d4:59:
63:e5:99:1c:47:23:b1:68:5e:04:db:4e:b6:1d:02:
48:32:8e:21:c4:67:08:4b:98:69:00:ef:6c:c8:af:
4e:8e:1d:06:95:6d:02:99:ab:f4:0f:2a:90:0b:22:
e9:9b:b4:5c:b8:32:ca:3e:f4:24:65:fc:58:c6:88:
81:73:81:80:33:07:01:24:d7:d3:79:c6:90:be:60:
fb:ba:e9:83:4b:43:3b:9c:0e:20:27:dd:a6:63:ca:
53:28:34:d4:5e:ac:8b:51:e6:f9:1d:29:78:21:5a:
99:6f:70:30:e4:60:d9:bd:c3:20:40:9c:ee:af:40:
73:eb:10:62:8b:b8:7a:d6:4c:85:1a:5c:84:3c:09:
44:de:10:e3:e9:3e:96:56:a7:97:4a:c9:96:d4:b0:
68:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:51:1E:79:28:6F:42:0C:E5:1A:05:3F:F1:90:E2:86:A7:14:89:F7
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/cFEeeShvQgzlGgU_8ZDihqcUifc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.150.0/24
5.231.70.0/24
5.231.82.0/24
5.231.96.0/24
5.231.203.0/24
5.231.234.0/24
77.90.22.0/24
77.90.39.0/24
77.90.41.0/24
77.90.52.0/24
77.90.58.0/24
85.93.1.0/24
85.93.6.0/24
85.93.22.0/24
89.144.14.0/24
89.144.16.0-89.144.18.255
94.249.153.0/24
94.249.158.0/24
178.18.147.0/24
Signature Algorithm: sha256WithRSAEncryption
86:89:e9:b2:2e:bb:e2:47:58:5a:43:f4:64:3a:20:1b:8e:4a:
aa:c0:e7:2d:97:83:2c:2e:de:a8:03:4d:18:29:c1:c6:71:e6:
43:5f:1e:ae:b1:a2:5a:7b:4a:03:9f:ed:f8:06:ee:8b:9a:ec:
98:28:97:03:ca:23:6c:0f:9d:f1:cd:7c:ef:1f:9c:71:02:72:
67:7b:9c:75:f8:0a:3d:ed:dc:39:ec:74:80:26:af:ca:9b:09:
31:69:20:ed:2f:e9:cc:37:c1:61:e5:47:54:4f:b0:52:4d:88:
37:1e:97:05:a2:d2:01:d2:ad:e0:03:72:4c:33:31:b6:f6:2b:
7b:08:45:3d:aa:bc:f7:68:85:72:bc:b1:3d:d2:fb:43:d3:d5:
db:59:ec:90:45:3b:2b:99:b0:3c:21:e0:fd:16:b5:b9:b4:f7:
6a:01:53:a2:3e:29:cd:c7:bc:84:37:cc:cb:35:6a:b5:fb:58:
5f:d7:c5:d6:51:c5:93:e5:62:7a:29:cc:af:c6:6a:07:d6:6f:
2e:bf:17:c4:94:ef:bc:88:56:ca:a1:c5:56:6e:5f:f1:33:10:
8a:c9:02:fe:02:05:a9:fd:8c:c9:bd:0b:b8:9f:74:32:04:11:
71:77:2b:4e:66:ba:9b:60:eb:1f:4f:0b:0e:7b:be:5b:b8:3d:
72:52:c3:95
-----BEGIN CERTIFICATE-----
MIIFdTCCBF2gAwIBAgISAZb2Qxu1A4/KT9nMYFVsZn8XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjUwNTIyMDQzMTU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MDUxMWU3OTI4NmY0MjBjZTUxYTA1M2ZmMTkwZTI4NmE3MTQ4OWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlCPtSlwgVX6fNPFoXSQ327SXBC5B
ntXxJGALOYttMUD3vU8+wHK0zKFJ/lf2IM1Xhtw98m2z4dXBnGBJ5oq4BJXkuuuO
S6s2blSRBfW3PNb56bMGPq82pyKKEZRpgtaDaY3j7pim1Flj5ZkcRyOxaF4E2062
HQJIMo4hxGcIS5hpAO9syK9Ojh0GlW0Cmav0DyqQCyLpm7RcuDLKPvQkZfxYxoiB
c4GAMwcBJNfTecaQvmD7uumDS0M7nA4gJ92mY8pTKDTUXqyLUeb5HSl4IVqZb3Aw
5GDZvcMgQJzur0Bz6xBii7h61kyFGlyEPAlE3hDj6T6WVqeXSsmW1LBoRQIDAQAB
o4ICgTCCAn0wHQYDVR0OBBYEFHBRHnkob0IM5RoFP/GQ4oanFIn3MB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvY0ZFZWVTaHZRZ3psR2dVXzhaRGlocWNVaWZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzCBgAQCAAEwegMEAAVT
lgMEAAXnRgMEAAXnUgMEAAXnYAMEAAXnywMEAAXn6gMEAE1aFgMEAE1aJwMEAE1a
KQMEAE1aNAMEAE1aOgMEAFVdAQMEAFVdBgMEAFVdFgMEAFmQDjAMAwQEWZAQAwQA
WZASAwQAXvmZAwQAXvmeAwQAshKTMA0GCSqGSIb3DQEBCwUAA4IBAQCGiemyLrvi
R1haQ/RkOiAbjkqqwOctl4MsLt6oA00YKcHGceZDXx6usaJae0oDn+34Bu6LmuyY
KJcDyiNsD53xzXzvH5xxAnJne5x1+Ao97dw57HSAJq/KmwkxaSDtL+nMN8Fh5UdU
T7BSTYg3HpcFotIB0q3gA3JMMzG29it7CEU9qrz3aIVyvLE90vtD09XbWeyQRTsr
mbA8IeD9FrW5tPdqAVOiPinNx7yEN8zLNWq1+1hf18XWUcWT5WJ6KcyvxmoH1m8u
vxfElO+8iFbKocVWbl/xMxCKyQL+AgWp/YzJvQu4n3QyBBFxdytOZrqbYOsfTwsO
e75buD1yUsOV
-----END CERTIFICATE-----
Generated at Sun Jun 15 15:43:07 2025 by rpki-client